$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft File: 5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft (raw, json) Hash identifier: rth425ex+Qc25MBTebPzMjBHQR5V//zAYXk8zVrDOEM= Subject key identifier: AE:DA:B7:91:17:87:C4:48:03:AC:E1:B1:64:45:94:2F:5D:3C:A1:B4 Authority key identifier: E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 Certificate issuer: /CN=A91B6395/serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Certificate serial: 07D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft Manifest number: 07CA Signing time: Tue 04 Nov 2025 21:20:52 +0000 Manifest this update: Tue 04 Nov 2025 21:20:51 +0000 Manifest next update: Tue 11 Nov 2025 21:20:51 +0000 Files and hashes: 1: 5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl (hash: Fzv78rUgzDsklYg4x5iC5iJnQeKHtDtxqycBZGBGP00=) 2: 09664BCE144D11EBA0AF3555C4F9AE02.roa (hash: R46kSRwUPT0o0L3SeYvTpp+6+QBHFN3Gx97bjF86iSQ=) 3: 08CE75A6144D11EBA0AF3555C4F9AE02.roa (hash: i2JuCRbl47lyjIy9Uq49MeJ6KkU/aJdqxVXf6ZSbeSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6395, serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Validity Not Before: Nov 4 21:20:51 2025 GMT Not After : Nov 11 21:20:51 2025 GMT Subject: CN=690a6e33-1d58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:77:e3:f7:db:98:62:09:81:d2:3a:cc:73:e4: 46:8e:1d:e0:b8:a1:0d:43:8c:c4:92:16:b9:6d:a4: 1f:52:cc:0c:7a:43:dd:ed:be:a2:68:3a:e6:36:f8: 8b:1d:13:66:37:32:e2:71:a1:80:27:3b:e3:40:70: ed:ee:8b:46:fa:aa:a9:76:d6:ba:59:e7:0f:f9:95: 85:1d:9f:dd:ae:b8:33:2f:dc:65:5d:d2:66:8d:e9: 25:9c:c1:15:cf:aa:b2:56:12:ba:7d:75:a0:33:30: 2f:0d:c3:29:a3:f9:b2:3e:1d:32:5c:75:6f:62:fa: 72:b2:f8:65:31:05:91:e7:20:6b:2e:0f:fd:64:25: 96:79:4f:a4:7f:b8:47:22:a9:e0:e6:34:5b:0d:72: 22:11:cb:aa:91:6d:e4:ca:13:9e:3f:07:c4:58:47: 5d:b8:ba:b2:2e:8a:75:70:f5:97:6f:a6:1e:ca:5f: 9f:56:18:16:ff:8b:96:21:30:e3:26:18:d7:66:50: 24:da:83:6e:e5:e1:57:d5:ec:a8:17:91:7b:e2:a3: 88:03:6a:4e:f6:f5:19:a1:c4:19:61:f2:32:0f:92: 3e:80:d8:98:c8:11:d2:10:5f:35:e4:87:70:be:40: 69:d2:f3:e6:22:4a:e8:71:23:63:61:a5:92:f9:51: ce:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DA:B7:91:17:87:C4:48:03:AC:E1:B1:64:45:94:2F:5D:3C:A1:B4 X509v3 Authority Key Identifier: keyid:E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:44:64:93:ca:72:e4:40:2d:19:64:e9:78:de:81:75:45:82: 3c:69:61:99:9c:c0:ea:01:b6:69:4e:79:bd:e0:70:91:92:0f: 21:df:47:cd:63:77:10:00:9c:79:a2:0f:eb:d7:8a:5e:80:8e: 75:92:b5:37:20:f5:68:7e:70:15:53:55:5c:51:a8:23:1c:fe: dc:27:37:90:df:f9:7d:ca:44:2e:fa:8d:6a:5e:d7:73:07:ea: 05:ca:1f:7d:c5:4c:00:91:8f:b3:d6:19:3f:11:95:93:94:d7: 58:e1:62:f4:45:1e:74:46:79:df:aa:82:7b:41:22:51:38:8f: aa:f3:41:e0:65:6d:88:17:75:2a:65:e1:44:1c:f5:18:0a:f6: 01:b0:66:e0:3f:1b:9b:7b:9f:ec:7a:c1:33:bf:ce:84:81:d6: 05:97:3c:77:4c:7e:ba:88:59:9c:15:81:1c:6a:46:4c:5d:c7: 1b:d4:9f:cd:63:84:eb:58:3a:03:61:e3:89:f6:34:4a:df:da: 6c:45:2b:6e:0d:b8:37:e2:8d:21:28:32:05:be:87:23:17:df: 13:8d:1e:ee:99:39:bf:eb:12:08:7f:78:dd:b5:4c:5d:e2:4c: 76:41:02:c5:1d:30:96:a2:67:97:f5:fd:92:0e:32:ef:58:01: 19:72:c2:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYzOTUxMTAvBgNVBAUTKEU2QUNGNEY1OTRBNDQzOEY4OTdBRURBQUI0QTNEMzhD ODY1Q0NFMjIwHhcNMjUxMTA0MjEyMDUxWhcNMjUxMTExMjEyMDUxWjAYMRYwFAYD VQQDEw02OTBhNmUzMy0xZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13fj99uYYgmB0jrMc+RGjh3guKENQ4zEkha5baQfUswMekPd7b6iaDrmNviL HRNmNzLicaGAJzvjQHDt7otG+qqpdta6WecP+ZWFHZ/drrgzL9xlXdJmjeklnMEV z6qyVhK6fXWgMzAvDcMpo/myPh0yXHVvYvpysvhlMQWR5yBrLg/9ZCWWeU+kf7hH Iqng5jRbDXIiEcuqkW3kyhOePwfEWEdduLqyLop1cPWXb6Yeyl+fVhgW/4uWITDj JhjXZlAk2oNu5eFX1eyoF5F74qOIA2pO9vUZocQZYfIyD5I+gNiYyBHSEF815Idw vkBp0vPmIkrocSNjYaWS+VHOnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7at5EX h8RIA6zhsWRFlC9dPKG0MB8GA1UdIwQYMBaAFOas9PWUpEOPiXrtqrSj04yGXM4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjM5NS9EQzQ1NjU3ODE0 NEExMUVCOTQwNzY2NTJDNEY5QUUwMi81cXowOVpTa1E0LUpldTJxdEtQVGpJWmN6 aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxejA5WlNrUTQtSmV1MnF0S1BUaklaY3ppSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjM5NS9EQzQ1NjU3ODE0NEExMUVCOTQwNzY2NTJDNEY5QUUwMi81cXowOVpTa1E0 LUpldTJxdEtQVGpJWmN6aUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGRGSTynLkQC0ZZOl43oF1RYI8aWGZnMDqAbZpTnm94HCRkg8h30fN Y3cQAJx5og/r14pegI51krU3IPVofnAVU1VcUagjHP7cJzeQ3/l9ykQu+o1qXtdz B+oFyh99xUwAkY+z1hk/EZWTlNdY4WL0RR50RnnfqoJ7QSJROI+q80HgZW2IF3Uq ZeFEHPUYCvYBsGbgPxube5/sesEzv86EgdYFlzx3TH66iFmcFYEcakZMXccb1J/N Y4TrWDoDYeOJ9jRK39psRStuDbg34o0hKDIFvocjF98TjR7umTm/6xIIf3jdtUxd 4kx2QQLFHTCWomeX9f2SDjLvWAEZcsLc -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:43 2025 by rpki-client